Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-45985HistoryApr 10, 2023 - 9:15 a.m.
CVE-2021-45985
2023-04-1009:15:07
Debian Security Bug Tracker
security-tracker.debian.org
10
cve-2021-45985
lua 5.4.3
erroneous finalizer
heap-based buffer over-read
unix
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
47.2%
In Lua 5.4.3, an erroneous finalizer called during a tail call leads to a heap-based buffer over-read.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | lua5.1 | < 5.1.5-9 | lua5.1_5.1.5-9_all.deb |
| Debian | 11 | all | lua5.1 | < 5.1.5-8.1 | lua5.1_5.1.5-8.1_all.deb |
| Debian | 999 | all | lua5.1 | < 5.1.5-9 | lua5.1_5.1.5-9_all.deb |
| Debian | 13 | all | lua5.1 | < 5.1.5-9 | lua5.1_5.1.5-9_all.deb |
| Debian | 12 | all | lua5.2 | < 5.2.4-3 | lua5.2_5.2.4-3_all.deb |
| Debian | 11 | all | lua5.2 | < 5.2.4-1.1 | lua5.2_5.2.4-1.1_all.deb |
| Debian | 999 | all | lua5.2 | < 5.2.4-3 | lua5.2_5.2.4-3_all.deb |
| Debian | 13 | all | lua5.2 | < 5.2.4-3 | lua5.2_5.2.4-3_all.deb |
| Debian | 12 | all | lua5.3 | < 5.3.6-2 | lua5.3_5.3.6-2_all.deb |
| Debian | 11 | all | lua5.3 | < 5.3.3-1.1+deb11u1 | lua5.3_5.3.3-1.1+deb11u1_all.deb |
Related
openvas
openvas
Huawei EulerOS: Security Advisory for lua (EulerOS-SA-2023-2655)
2023-09-05 00:00:00
Huawei EulerOS: Security Advisory for lua (EulerOS-SA-2023-2697)
2023-09-05 00:00:00
Huawei EulerOS: Security Advisory for lua (EulerOS-SA-2023-2732)
2023-09-11 00:00:00
ubuntucve
ubuntucve
CVE-2021-45985
2023-04-10 00:00:00
nessus
nessus
EulerOS Virtualization 2.11.0 : lua (EulerOS-SA-2023-2763)
2024-01-16 00:00:00
EulerOS 2.0 SP11 : lua (EulerOS-SA-2023-2655)
2024-01-16 00:00:00
EulerOS Virtualization 2.11.1 : lua (EulerOS-SA-2023-2732)
2024-01-16 00:00:00
cve
cve
CVE-2021-45985
2023-04-10 09:15:07
cbl_mariner
cbl_mariner
CVE-2021-45985 affecting package ntopng for versions less than 5.2.1-2
2023-05-03 16:09:09
CVE-2021-45985 affecting package memcached for versions less than 1.6.13-3
2023-05-03 16:24:08
CVE-2021-45985 affecting package lua for versions less than 5.4.3-5
2023-05-03 16:24:08
redhatcve
redhatcve
CVE-2021-45985
2023-04-10 11:30:11
prion
prion
Heap overflow
2023-04-10 09:15:00
osv
osv
BIT-lua-2021-45985
2024-03-06 10:55:49
CVE-2021-45985
2023-04-10 09:15:07
nvd
nvd
CVE-2021-45985
2023-04-10 09:15:07
cvelist
cvelist
CVE-2021-45985
2023-04-10 00:00:00
veracode
veracode
Denial Of Services (DoS)
2023-04-28 17:49:45
ibm
ibm
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
47.2%
Related for DEBIANCVE:CVE-2021-45985